FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS

 
 
LinkBack Thread Tools
 
Old 01-25-2011, 10:34 AM
Karanbir Singh
 
Default kernel security issues

On 01/25/2011 10:24 AM, Dave wrote:
> after watching the security alerts for the centos kernel I've the
> impression that altought they are fixed fastly there are more alerts
> than for the vanilla one of the same version.

vanilla one for the same version isnt really that actively maintained is
it ? Also, the EL kernels contain a fair bit of backports which makes
things a bit more interesting.

- KB
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 01-25-2011, 11:59 AM
"Dave"
 
Default kernel security issues

On Tue, 25 Jan 2011 11:34 +0000, "Karanbir Singh" <mail-lists@karan.org>
wrote:

> On 01/25/2011 10:24 AM, Dave wrote:
> > after watching the security alerts for the centos kernel I've the
> > impression that altought they are fixed fastly there are more alerts
> > than for the vanilla one of the same version.
>
> vanilla one for the same version isnt really that actively maintained is
> it ? Also, the EL kernels contain a fair bit of backports which makes
> things a bit more interesting.

Not sure. That's why I'm asking for.
eg 2.6.32 >> 2.6.32.28 (longterm)
are there only improvements but no fixes?

On the other hand EL kernels are as far as I got information from here
more
adapted to Industry needs. So they have special code added vanilla
kernels don't have.
Right?

--
http://www.fastmail.fm - A no graphics, no pop-ups email service

_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 01-25-2011, 03:36 PM
Gordon Messmer
 
Default kernel security issues

On 01/25/2011 02:24 AM, Dave wrote:
> Question: Are those alerts mostly specifically centos related or do they
> also affect the vanilla sources?

I don't recall having ever seen a security problem in the RHEL/CentOS
kernel that didn't affect the upstream sources.

There's no need to rely on impressions, though. Go to:
http://rhn.redhat.com/errata/rhel-server-errata-security.html
Select "security" to trim down the number of entries listed. Search for
"kernel" and open each one. The errata notice will state "This update
fixes the following security issue:" and include a CVE ID. You can look
that up to see if the upstream kernel is affected.
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 
Old 01-25-2011, 04:11 PM
Karanbir Singh
 
Default kernel security issues

On 01/25/2011 12:59 PM, Dave wrote:
>> vanilla one for the same version isnt really that actively maintained is
>> it ? Also, the EL kernels contain a fair bit of backports which makes
>> things a bit more interesting.
>
> Not sure. That's why I'm asking for.
> eg 2.6.32>> 2.6.32.28 (longterm)
> are there only improvements but no fixes?

the CentOS-5 kernel is at 2.6.18 ( as based ) with a 2xx TAG for
release. It contains backports from newer kernels, added hardware
support from upstream and fix's + enhancements from the 2.6.18 base.

> On the other hand EL kernels are as far as I got information from here
> more adapted to Industry needs. So they have special code added vanilla
> kernels don't have.
> Right?

That is perhaps one ( a marketing person spun ? ) way of looking at things.

- KB
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 

Thread Tools




All times are GMT. The time now is 10:07 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org